Re: CGI - The New Java/Flash
CGI is nothing like flash/java etc.
Chalk and cheese.
As the 'G' suggests, it's a gateway API, and a rather simple one at that.
Any half-competent web site is already setup to be 'sanitized' as you suggest as a matter of course.. It should run under it's own id, with executable scripts owned by a different user (and therefore not writable), should be chrooted/jailed if practical, and generally be sandboxed from any functionality that it would never need.
P.S. I didn't downvote you